CVE-2022-26508

Опубликовано: 11 нояб. 2022

Источник: nvd

CVSS3: 4.3

CVSS3: 7.5

EPSS Низкий

Описание

Improper authentication in the Intel(R) SDP Tool before version 3.0.0 may allow an unauthenticated user to potentially enable information disclosure via network access.

Ссылки

https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00710.html
Patch
Vendor Advisory
https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00710.html
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:intel:server_debug_and_provisioning_tool:*:*:*:*:*:*:*:*

Версия до 3.0.0 (исключая)

EPSS

Процентиль: 52%

0.00286

Низкий

4.3 Medium

CVSS3

7.5 High

CVSS3

Дефекты

CWE-287

Связанные уязвимости

GHSA-wpxj-4mm5-pvq8

CVSS3: 7.5

github

около 3 лет назад

Improper authentication in the Intel(R) SDP Tool before version 3.0.0 may allow an unauthenticated user to potentially enable information disclosure via network access.

EPSS

Процентиль: 52%

0.00286

Низкий

4.3 Medium

CVSS3

7.5 High

CVSS3

Дефекты

CWE-287